In message <3677.843281687@connect.com.au> George Michaelson writes:
: I don't have sources to hand. Is it even remotely plausible
: to make removing sprintf and replacing with snprintf a goal?
:
: How about for nominated subsets of the code?
If one was wanting to do something like this, then one might profit
from looking at the OpenBSD sources. Those sources have had much of
this sort of work done to them. In addition, many strcpy have been
changed to strncpy to help avoid buffer overflow.
Given the relatively recent split between these two source bases and
attempts to keep them reatively in sync, it would be fairly easy to
merge those changes back in. Much easier than merging them into, say,
FreeBSD where the split goes farther back, and few efforts have been
made to stay in sync.
It would be a lot of work sifting through all of the CVS logs to find
everything, but the information is there. Some of it will be cryptic,
but it may be as simple as running diffs in all the right places and
filtering out the noise. This certainly would make the effort much
easier for any volunteer that might chose to undertake this project.
Warner